Lucene search
MitreCVE-2022-37185HistorySep 06, 2022 - 8:15 p.m.
CVE-2022-37185
2022-09-0620:15:09
CWE-89
mitre
web.nvd.nist.gov
32
4
cve-2022-37185
sql injection
repschoolproj.php
ems 6.2
thai basic education commission
data leakage
nvd
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.6
Confidence
High
EPSS
0.002
Percentile
54.2%
SQL injection vulnerability exists in the school information query interface (repschoolproj.php) of the EMS 6.2 system of the Office of the Thai Basic Education Commission, which can lead to data leakage.
Affected configurations
Node
ems_projectemsMatch6.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ems_project | ems | 6.2 | cpe:2.3:a:ems_project:ems:6.2:*:*:*:*:*:*:* |
References
Social References
More
Related
nvd
nvd
CVE-2022-37185
2022-09-06 20:15:09
cvelist
cvelist
CVE-2022-37185
2022-09-06 19:28:44
prion
prion
Sql injection
2022-09-06 20:15:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.6
Confidence
High
EPSS
0.002
Percentile
54.2%
Related for CVE-2022-37185